Mutual Authentication with OD

skip11

Hi,

Can anyone in the user community or Interwoven tell me if OpenDeploy can be configured
to do mutual authentication between a sender and a reciever ? What I mean by mutual authentication
is placing an rsa public key on the reciever and an rsa private key on the sender for the non-root
user who will run Opendeploy. I know it is easy to encrypt deployments with server and sender side
certificates, but this does not actually authenticate the user who is doing the deploymnet, it just verifies
the hosts concerned.

Any input will be greatly appreciated, and for a postitive answer a box of Swiss Teuscher chocolates
could be in order

Thanks in advance,

R.Barger
Credit Suisse Group
Zurich, Switzerland

Edited by skip on 04/15/05 04:34 AM (server time).

Migrateduser

OpenDeploy does not perform user authentication on the receiver. It does, however, perform sender node authentication through the allowed hosts check and SSL.

User authentication is done on the sender node:

+ Via CSF when logging into the UI
+ Via CSF when starting a deployment through web services
+ Via the o/s login when starting a deployment from the command line

Then the authorization policies for deployments from the base server are applied:

+ Only authorized deployments are accessible in the UI
+ Web services client can only start deployments for the authorized user
+ As of OD 6.0.2, 'iwodcmd start' can only start deployments as authorized for the user running the command (unless overridden by config attribute in upcoming server patch)

There's a feature request on file (34694) for user authentication on receiver.

I guess I don't get any chocolates.

Todd Scallan
Director of Product Management
Interwoven
t: 408-530-7167
e: tscallan@interwoven.com